<?php 
$loging=1;
include_once(dirname(__FILE__)."/conn.php");
$dopost=isset($_POST["dopost"])?$_POST["dopost"]:"";
$userid=isset($_POST["userid"])?$_POST["userid"]:"";
$psw=isset($_POST["psw"])?$_POST["psw"]:"";
$validate=isset($_POST["validate"])?$_POST["validate"]:"";
if(empty($dopost)) $dopost="";
//--------------------------------
//登录检测
//--------------------------------
if($dopost=="login"){
	if(empty($validate)) $validate="";
	else $validate = strtolower($validate);
	$svali = GetCkVdValue();
	//DropCkVdValue();
	if(($validate=="" || $validate!=$svali) && $cfg_use_vdcode=='是'){
		ShowMsg("验证码不正确!","");
	}else{
		if(!empty($userid)&&!empty($psw)){
			$psw=md5($psw);
			$row = $db->getRow("SELECT * FROM `adminuser` WHERE `username`='{$userid}'");
			if(!is_array($row)){
				$res=-1;
			}else{
				if ($row["passwd"]===$psw){
					$res=1;
					session_register('admin_name');
					session_register('admin_id');
					$_SESSION["admin_name"]=$userid;
					$_SESSION["admin_id"]=$row["id"];

					$gotopage="index.php";
				}
			}
			//成功登录
			if($res==1){
				if(!empty($gotopage)){
					ShowMsg("成功登录，正在转向管理主页！",$gotopage);
					exit();
				}else{
					ShowMsg("成功登录，正在转向管理主页！","index.php");
					exit();
				}
			}else if($res==-1){
				ShowMsg("你的密码错误!","");
			}else{
				ShowMsg("你的密码错误!","");
			}
		}else{
			ShowMsg("用户和密码没填写完整!","");
		}
	}//<-验证用户
}
?>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>后台管理</title>
<link href="base.css" rel="stylesheet" type="text/css">
</head>
<body style='MARGIN: 0px' bgColor='#ffffff' leftMargin='0' topMargin='0' scroll='no'>
<table width="98%" border="0" align="center" cellpadding="0" cellspacing="0" bordercolor="#111111" style="BORDER-COLLAPSE: collapse">
  <tr> 
    <td width="100%" height="64" background="img/indextitlebg.gif"><img src="img/df_dedetitle.gif" width="178" height="53"> 
    </td>
  </tr>
  <tr> 
    <td width="100%" height="20">　</td>
  </tr>
  <tr> 
    <td width="100%" height="20" valign="bottom">
    	<table width="540" border="0" cellspacing="0" cellpadding="0">
        <tr> 
          <td align="right" style="FONT-SIZE: 2pt">&nbsp;</td>
        </tr>
        <tr> 
          <td><IMG height=14 src="img/book1.gif" width=20>&nbsp; 用户登录</td>
        </tr>
      </table></td>
  </tr>
  <tr> 
    <td width="100%" height="1" background="img/sp_bg.gif"></td>
  </tr>
  <tr> 
    <td width="100%" height="2"></td>
  </tr>
  <tr> 
    <td width="100%" height="136" valign="top">
    	<form name="form1" method="post" action="login.php">
        <input type="hidden" name="dopost" value="login">
        <table width="540" border="0" cellspacing="0" cellpadding="0">
          <tr> 
            <td colspan="2" height="4"></td>
          </tr>
          <tr> 
            <td width="156" height="30" align="center"> 用户名：</td>
            <td width="384"> <input type="text" name="userid" style="width:150;height:20"> 
            </td>
          </tr>
          <tr> 
            <td height="30" align="center"> 密　码： </td>
            <td> <input type="password" name="psw" style="width:150;height:20"> 
            </td>
          </tr>
          <?php 
          if($cfg_use_vdcode=='是'){
          ?>
          <tr> 
            <td height="30" align="center"> 验证码： </td>
            <td> <table width="90%"  border="0" cellspacing="0" cellpadding="0">
                <tr> 
                  <td width="25%"><input type="text" name="validate" style="width:80;height:20"></td>
                  <td width="75%"><img src='../include/vdimgck.php' width='50' height='20'></td>
                </tr>
              </table></td>
          </tr>
          <?php 
          }else{
          	//echo "<tr><td colspan='2'>&nbsp;&nbsp;&nbsp;&nbsp;<font color='red'>为了使程序有更大程度的兼容，后台默认关闭了验证码，为了你的登录更安全，请确认你的系统支持GD后，在后台参数中开启。</font></td></tr>\r\n";
          }
          ?>
          <tr> 
            <td height="50" colspan="2" align="center">
            	<input type="submit" name="sm1" value="登录" class="nbt" onClick="this.form.submit();"> 
              &nbsp;
              <input type="button" name="sm2" value="技术支持" onClick="window.open('http://');" class="nbt"> 
              &nbsp;
              </td>
          </tr>
        </table>
      </form></td>
  </tr>
  <tr> 
    <td width="100%" height="2" valign="top"></td>
  </tr>
</table>
</body>
</html>